$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa File: ef566134-dc37-415a-a1e3-05f23305a92b.roa (raw, json) Hash identifier: NKqWpLVF3pUZNwQg8vdS7JZKwaEEl0kfFhpHa4AShUk= Subject key identifier: 1F:F3:1F:9B:60:8B:C5:0D:E4:A7:74:1D:FE:6C:62:E2:50:DD:7F:A8 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 60FC503C804679EA26971816EE67C6C382A3C940 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa Signing time: Wed 16 Apr 2025 00:10:27 +0000 ROA not before: Wed 16 Apr 2025 00:10:27 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fc:50:3c:80:46:79:ea:26:97:18:16:ee:67:c6:c3:82:a3:c9:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Apr 16 00:10:27 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=b59d3124f9f8ae552b4978046910156045189c4f33a54103ac341769e8a4e004, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:67:c3:db:5e:37:d9:6a:33:71:5a:56:67: eb:23:f8:5a:b0:ff:22:a7:de:fe:20:7f:cc:20:3c: 46:9a:57:9b:91:ba:fc:33:cf:ca:16:bb:05:35:ab: 53:5f:94:99:c2:cc:16:5f:40:92:04:41:3b:7a:36: 31:a2:85:ad:d5:04:ad:9c:82:43:e5:ae:b3:2d:40: 85:3d:40:50:e3:bd:35:c2:52:a1:61:2b:81:ba:a6: c1:bb:d0:a8:17:72:c8:68:f6:81:4d:4e:98:c5:ed: cd:09:30:0c:b4:e3:01:67:47:48:b0:c3:b2:90:60: 87:b8:70:0c:31:c2:3b:a8:ee:d3:64:d9:c6:c1:85: d2:ce:35:dd:2e:3c:f2:08:23:02:26:3f:7c:f5:4b: 24:5f:d2:2f:a8:25:4c:ef:79:d2:9f:de:00:69:ab: 06:30:68:99:1e:a1:91:41:56:6d:ee:94:30:3b:1c: 75:68:67:cf:a6:1b:7d:d0:c4:9d:17:a5:cd:94:97: 4d:ab:b5:af:db:85:e0:d9:33:d9:23:31:b1:66:18: 23:8f:fa:1f:85:b7:0e:f6:33:b3:28:f6:5f:1c:8f: d1:8d:b5:9f:45:e0:9a:45:ff:3d:53:ff:f5:b0:d1: d6:0e:6f:39:ee:d8:7b:fa:15:94:ef:07:ac:b1:ae: 69:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F3:1F:9B:60:8B:C5:0D:E4:A7:74:1D:FE:6C:62:E2:50:DD:7F:A8 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 96:0a:2e:b2:5f:92:b6:48:ed:a3:06:82:f0:f8:66:3d:a3:60: 71:e7:10:8b:b1:93:40:f1:32:55:87:63:82:ec:60:24:14:1a: 69:5d:7c:ad:b7:53:66:d5:a2:a4:d0:6d:72:59:64:fc:46:5e: 51:59:a1:a8:7d:34:a3:45:2a:b8:99:67:9f:d1:16:e6:82:ee: b8:17:4c:67:dc:b2:9f:b4:ca:42:8e:f4:ca:cc:e8:6c:31:b9: 8f:45:e1:a1:a0:7e:84:40:e0:d3:c3:c9:eb:11:d5:2c:f0:83: 11:3e:98:18:7a:a8:1f:b3:96:52:e7:32:a1:4e:54:f5:aa:31: 39:22:a5:a3:37:6a:23:05:b2:19:3d:40:cb:a7:70:2f:58:96: af:01:97:6d:02:9d:8f:41:06:e1:48:e0:02:8b:44:16:f5:d5: 67:6f:4c:7a:35:18:6b:a0:f5:08:e5:19:94:ac:f7:2a:4d:20: cc:a8:58:54:9d:87:ee:cb:b9:09:85:4f:78:1d:b3:3b:44:71: 94:9d:77:4d:a9:11:c7:dd:60:4a:3b:01:ec:5f:5e:10:71:20: 36:e9:d8:13:a2:56:ee:fd:40:e4:50:69:b1:fa:41:97:c2:84: 2c:c0:b4:2b:94:1f:0d:63:01:7f:7e:48:3d:07:bd:14:1d:e7: 1f:50:d3:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYPxQPIBGeeomlxgW7mfGw4KjyUAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNDE2MDAxMDI3WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTlkMzEyNGY5ZjhhZTU1MmI0OTc4MDQ2OTEwMTU2MDQ1 MTg5YzRmMzNhNTQxMDNhYzM0MTc2OWU4YTRlMDA0MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl22fD21432WozcVpWZ+sj+Fqw/yKn3v4gf8wgPEaaV5uR uvwzz8oWuwU1q1NflJnCzBZfQJIEQTt6NjGiha3VBK2cgkPlrrMtQIU9QFDjvTXC UqFhK4G6psG70KgXcsho9oFNTpjF7c0JMAy04wFnR0iww7KQYIe4cAwxwjuo7tNk 2cbBhdLONd0uPPIIIwImP3z1SyRf0i+oJUzvedKf3gBpqwYwaJkeoZFBVm3ulDA7 HHVoZ8+mG33QxJ0Xpc2Ul02rta/bheDZM9kjMbFmGCOP+h+Ftw72M7Mo9l8cj9GN tZ9F4JpF/z1T//Ww0dYObznu2Hv6FZTvB6yxrmmxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUH/Mfm2CLxQ3kp3Qd/mxi4lDdf6gwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2VmNTY2MTM0LWRjMzctNDE1YS1hMWUzLTA1ZjIzMzA1YTkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAJYKLrJfkrZI7aMGgvD4Zj2jYHHn EIuxk0DxMlWHY4LsYCQUGmldfK23U2bVoqTQbXJZZPxGXlFZoah9NKNFKriZZ5/R FuaC7rgXTGfcsp+0ykKO9MrM6GwxuY9F4aGgfoRA4NPDyesR1SzwgxE+mBh6qB+z llLnMqFOVPWqMTkipaM3aiMFshk9QMuncC9Ylq8Bl20CnY9BBuFI4AKLRBb11Wdv THo1GGug9QjlGZSs9ypNIMyoWFSdh+7LuQmFT3gdsztEcZSdd02pEcfdYEo7Aexf XhBxIDbp2BOiVu79QORQabH6QZfChCzAtCuUHw1jAX9+SD0HvRQd5x9Q0xU= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:45 2025 by rpki-client